Online authentication systems for payment, electronic commerce, personal communication, etc. are increasingly subject to attacks. If breached, such systems can permit fraudulent transactions. As a result, software applications (apps), e.g., e-commerce apps, banking apps, etc. deploy additional levels of identity authentication to verify user identity for sensitive transactions, e.g., money transfer from a new device, ordering goods to a new delivery address, etc. This disclosure proposes queueing actions that require additional levels of authentication such that such actions are executed at a later time once a high level of trust is obtained. High level of trust can be obtained in various ways, e.g., when the user uses the app or service from a trusted device, when the user device is at a trusted location or connects to a trusted network, the user device is close to another device that the user is signed into, etc.
Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.
Price, Thomas and Lewis, Justin, "Automatic execution of authentication actions at high trust levels", Technical Disclosure Commons, (October 06, 2017)